Latest Cyber Security News
Cybersecurity researchers have disclosed details of fraudulent activity targeting users across the Middle East and North Africa by employing various fraudulent Facebook accounts impersonating …
Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser AlertsRead More
Palo Alto Networks has revealed that it has observed "active exploitation" of a recently disclosed PAN-OS vulnerability by an unknown threat actor to obtain unauthorized access to GlobalProtect …
Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN FlawRead More
Splunk has released security updates to address a critical security flaw in Splunk Enterprise that could be exploited to conduct unauthenticated file operations and even remote code execution. The …
Critical Splunk Enterprise Flaw Lets Attackers Run Code Without AuthenticationRead More
Anthropic said on Friday it will "abruptly disable" its most advanced artificial intelligence (AI) models, Claude Fable 5 and Mythos 5, for all users after the U.S. government ordered it to suspend …
U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign NationalsRead More
Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a …
Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF RootkitRead More
Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a …
400+ Arch Linux AUR Packages Hijacked to Install Rust Credential StealerRead More
Google on Friday said it's pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting …
Google Sues Chinese Smishing Network Accused of Using Gemini AI in PhishingRead More
Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the Linux login system itself. Sygnia, which tracks the group as …
China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a DecadeRead More
Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence (AI) coding agents into running arbitrary code on developer machines. Called …
Agentjacking Attack Tricks AI Coding Agents Into Running Malicious CodeRead More
For most of the past decade, managed detection and response was the answer to a real problem. Security teams couldn't staff around the clock, couldn't hire enough analysts, and needed someone else to …
Rethinking MDR as Attackers and Defenders Embrace AIRead More
Cybersecurity researchers have disclosed details of three now-patched security flaws impacting LangGraph, including a critical vulnerability chain that could result in remote code …
LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code ExecutionRead More
An INTERPOL-led operation last month resulted in the disruption of Sniper Dz, a decade-long phishing-as-a-service (PhaaS) platform, Group-IB said Thursday. The effort, codenamed Operation Ramz, took …
INTERPOL Takes Down Sniper Dz Phishing Platform, Arrests 201 Across 13 CountriesRead More
Authorities in Europe have disrupted AudiA6, a cryptocurrency laundering service used by ransomware gangs and cybercriminal networks. Europol, in a statement issued Thursday, said the dismantling of …
Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware GangsRead More
The ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterprise systems, steal data, and demand payment to keep it private. The campaign hit universities …
ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach UniversitiesRead More
Two security teams have shown, in separate research published this week, that OpenClaw, the popular self-hosted AI agent, can be driven to run attacker-controlled code or hand over sensitive data …
New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking SecretsRead More
Security researcher Chaotic Eclipse (aka Nightmare-Eclipse and MSNightmare) has released a new Windows BitLocker bypass dubbed GreatXML, a day after they published an exploit for Microsoft …
New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML FilesRead More
A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while …
The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a WormRead More
Most good security work is invisible by design. Today is the exception. The 2026 Cybersecurity Stars Awards winners are announced across 95 subcategories in four main award categories. The reason is …
Cybersecurity Stars Awards 2026: Winners Announced Across 95 CategoriesRead More
It's been one of those weeks. You expect the usual noise: recycled malware, sloppy attacks, another easy target getting hit. Instead, there's a supply chain attack kit in a public repo, a …
For thirty years, vulnerability management ran on a buffer: the months between when a vulnerability was found and when someone could figure out how to weaponize it. The solution was straightforward …
AI Broke Vulnerability Management. That’s Why CISOs Are Moving Budget to BAS.Read More
